Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-4358

Опубликовано: 30 сент. 2008
Источник: nvd
CVSS2: 10
EPSS Низкий

Описание

Unspecified vulnerability in class/theme.class.php in SPAW Editor PHP Edition before 2.0.8.1 has unknown impact and attack vectors, probably related to directory traversal sequences in the theme name.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:spaw_editor:spaw_php:*:*:*:*:*:*:*:*
Версия до 2.0.8 (включая)
cpe:2.3:a:spaw_editor:spaw_php:1.0:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.5a:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.1:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.1:beta:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.1:rc1:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.2:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.2:beta:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.2:beta_2:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.0:beta:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.0:rc:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.5:beta:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:spaw_editor:spaw_php:2.0.7:*:*:*:*:*:*:*

EPSS

Процентиль: 74%
0.00851
Низкий

10 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

github логотип

GHSA-3fpx-q477-fj97

github
почти 4 года назад

Unspecified vulnerability in class/theme.class.php in SPAW Editor PHP Edition before 2.0.8.1 has unknown impact and attack vectors, probably related to directory traversal sequences in the theme name.

EPSS

Процентиль: 74%
0.00851
Низкий

10 Critical

CVSS2

Дефекты

CWE-20